PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-47926 Adobe CVE debrief

CVE-2026-47926 is a MEDIUM severity vulnerability in Adobe Acrobat Reader versions 24.001.30365, 26.001.21651, and earlier. The vulnerability is an out-of-bounds read issue that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to disclose sensitive information by tricking a victim into opening a malicious file. This vulnerability requires user interaction.

Vendor
Adobe
Product
Acrobat Reader
CVSS
MEDIUM 5.5
CISA KEV
Not listed in stored evidence
Original CVE published
2026-06-09
Original CVE updated
2026-06-12
Advisory published
2026-06-09
Advisory updated
2026-06-12

Who should care

Users of Adobe Acrobat Reader versions 24.001.30365, 26.001.21651, and earlier should apply patches or mitigations to prevent exploitation of this vulnerability.

Technical summary

The vulnerability is caused by an out-of-bounds read issue in Adobe Acrobat Reader. This could allow an attacker to disclose sensitive information. The Common Vulnerability Scoring System (CVSS) score for this vulnerability is 5.5, indicating a MEDIUM severity level.

Defensive priority

High

Recommended defensive actions

  • Apply patches or updates provided by Adobe to vulnerable systems as soon as possible.
  • Restrict user access to untrusted files and ensure users are aware of the risks associated with opening files from unknown sources.
  • Consider implementing security measures such as application whitelisting and file access controls.

Evidence notes

The CVE-2026-47926 vulnerability was publicly disclosed on [cvePublishedAt] and last modified on [cveModifiedAt]. The vulnerability affects Adobe Acrobat Reader versions 24.001.30365, 26.001.21651, and earlier.

Official resources

CVE-2026-47926 was published on 2026-06-09T21:17:22.573Z and last modified on 2026-06-12T19:23:40.760Z.